Often auditors use the term internal control or internal control environment. Internal control is defined as a process, affected by the University’s board of trustees, management and other personnel, designed to provide reasonable assurance regarding the achievement of objectives in the following categories:

  1. Effectiveness and efficiency of operations.
  2. Reliability of financial reporting.
  3. Compliance with applicable laws and regulations.

The internal control environment is basically the people, processes, technology, and culture that enable us to achieve our objectives.

Controls and the control environment concepts apply equally to the University as a whole or a specific department or unit within the broader community. In fact the internal control environment found in any one organizational unit of the University (college, department, etc.) can influence the internal control environment of related units; and collectively all the units may impact the internal control environment of the University as a whole.

The strength or health of the internal control environment plays a part in determining the University’s risk exposures and our ability to respond to and manage those risks. In addition, the health of the internal control environment influences audit planning. Over time Internal Audit will add resources to this page to encourage Faculty and Staff to think about how to improve the University’s internal control environment. Check back and/or make requests for tools or information that would help your work and create an appropriate internal control environment. To make requests contact Chris Garrity at 610-660-1354 or

One tool to help assess the health of an internal control environment is a Control Self-Assessment Questionnaire . The questionnaire evaluates certain financial controls. The tool should aid in the proactive assessment and management of issues and concerns.

Control Self-Assessment